Methods of securely performing online transactions are described which involve two independently controlled web servers. In order to complete a transaction, a user interacts concurrently with each of the two web servers and authentication may occur between the user and each web server and between web servers. Each of the two web servers provide data which is used to complete the transaction and the data provided by the first web server is communicated directly to the second web server for use in the transaction. In an embodiment, the first web server provides a web page which enables a user to specify a variable which is used in the transaction. This is communicated to the second web server which processes the transaction along with an identifier for the message. The identifier may be used in validating the variable before it is used in processing the transaction. Following completion of a transaction this may be reported in real time to the first web server.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method of performing an online transaction comprising: within a single web session: performing authentication of a user at a first web server; providing a first web page to the user from the first web server, the first web page comprising a link to a second web page provided by the second web server; receiving a user input at the first web server, the user input identifying a user input variable entered by the user; and establishing a first communication link between the first web server and the second web server and securely transmitting user data from the first web server to the second web server over the first communication link prior to completion of a transaction between the user and one or both of the first and second web servers, wherein the user data comprises the user input variable; and the method further comprising: establishing a second communication link between the first web server and the second web server following completion of the transaction, for secure transmission of transaction data between the web servers; and securely receiving transaction data at the first web server from the second web server over the second communication link.
2. A method according to claim 1 , wherein the step of establishing a second communication link is performed in real time immediately following completion of the transaction.
3. A method according to claim 1 , further comprising: enabling the user to concurrently and independently interact with each of the first and second web servers via a web page provided by the first web server and the second web page provided by the second web server, wherein the web page provided by the first web server is the first web page provided by the first web server or another web page provided by the first web server.
4. A method according to claim 3 , wherein the web pages provided by the first and second web servers are provided within two separate frames of a browser.
5. A method according to claim 3 , wherein the web page provided by the second web server is the second web page.
6. A method according to claim 1 , further comprising: performing authentication of the user at the second web server.
7. A method according to claim 1 , further comprising, at the first web server: receiving a request for the user input variable from the second web server via the first communication link; and transmitting a response message comprising the user input variable to the second web server via the first communication link.
8. A method according to claim 7 , further comprising, at the first web server: verifying the request prior to transmitting the response.
9. A method according to claim 1 , further comprising, at the first web server: pushing a message comprising the user input variable to the second web server.
10. A method according to claim 1 , wherein secure transmission of user data over the first communication link uses window to window data transfer.
11. A method according to claim 10 , further comprising: encrypting the window to window data transfer.
12. A method according to claim 1 , further comprising: passing an identifier associated with the user from the first web server to the second web server on activation of the link to the second web page provided by the second web server.
13. A computer program embodied on a non-transitory computer readable medium comprising computer program code means which when said program is run on a computer, is adapted to: perform authentication of a user at a first web server; provide a first web page to the user from the first web server, the first web page comprising a link to a second web page provided by the second web server; receive a user input at the first web server, the user input identifying a user input variable entered by the user; establish a first communication link between the first web server and the second web server; securely transmit user data from the first web server to the second web server over the first communication link prior to completion of a transaction between the user and one of the first and second web servers; establish, at the first web server, a second communication link between the first web server and the second web server following completion of the transaction; and securely receive transaction data at the first web server from the second web servers over the second communication link, wherein the steps of performing authentication, providing a first web page and establishing a first communication link are performed within a single web session.
14. A computer program according to claim 13 , wherein the step of establishing a second communication link is performed in real time following completion of the transaction.
15. A system for secure web based transactions comprising a first web server and a second web server, wherein the first web server is arranged to: perform authentication of a user; provide a first web page to the user, the first web page comprising a link to a second web page provided by the second web server; receive a user input at the first web server, the user input identifying a user input variable entered by the user; establish a first communication link between the first web server and the second web server; securely transmit user data from the first web server to the second web server over the first communication link prior to completion of a transaction between the user and one of the first and second web servers; establish a second communication link between the first web server and the second web server following completion of the transaction; and securely receive transaction data at the first web server from the second web servers over the second communication link.
16. A system according to claim 15 , wherein said at least one of the first and the second web servers is arranged to establish the second communication link in real time immediately following completion of the transaction.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
April 24, 2009
December 31, 2013
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.